PT-2019-18172 · F5 · F5 Big-Ip Ltm

Published

2019-02-05

Updated

2020-08-24

CVE-2019-6590

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions F5 BIG-IP LTM versions 12.1.0 through 12.1.3.6 F5 BIG-IP LTM versions 13.0.0 through 13.0.1

Description The issue arises under certain conditions when the Traffic Management Microkernel (TMM) processes SSL Session ID Persistence traffic, leading to excessive resource consumption.

Recommendations For versions 12.1.0 through 12.1.3.6, consider restricting SSL Session ID Persistence traffic to minimize the risk of excessive resource consumption by the TMM. For versions 13.0.0 through 13.0.1, consider restricting SSL Session ID Persistence traffic to minimize the risk of excessive resource consumption by the TMM.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-6590

Affected Products

F5 Big-Ip Ltm

PT-2019-18172 · F5 · F5 Big-Ip Ltm

CVE-2019-6590

Related Identifiers

Affected Products

References · 4